Harder, Better, Faster, Stronger: Semi-Auto Vulnerability Research presented at Blackhat USA 2010

by Richard Johnson, Lurene ( pusscat ) Grenier,

Tags: Security Fuzzing Exploitation

Summary : Much work has been presented in the past few years concerning bug discovery through fuzzing. Everything from the feasibility of exhaustive generation fuzzing, to the continued productivity of simple mutation fuzzing has been covered. This talk will assume finding bugs is a foregone conclusion, and instead discuss the pre and post fuzzing process necessary to efficiently analyze vulnerabilities for a given program to the stage where exploitability has a high confidence, and exploitation can be handed off or undertaken in house. This process will be driven by intelligent, analyst driven automation, with a focus on the continued production of exploitable bugs with a minimum of wasted effort.